Runtime Detection of Covert Channels

NAOYUKI NAGATOU; Takuo Watanabe

doi:10.1109/ARES.2006.114

Publication Information

Title

Japanese:
English:	Runtime Detection of Covert Channels

Author

Japanese:	永藤直行, 渡部卓雄.
English:	NAOYUKI NAGATOU, Takuo Watanabe.

Language

English

Journal/Book name

Japanese:
English:

Volume, Number, Page

pp. 577-584

Published date

Apr. 22, 2006

Publisher

Japanese:
English:	IEEE

Conference name

Japanese:
English:	1st International Conference on Availability, Reilability and Security (ARES 2006)

Conference site

Japanese:
English:	Vienna

Official URL

http://www.ares-conference.eu/ares2006/

DOI

https://doi.org/10.1109/ARES.2006.114

Abstract

The authors are interested in the characterization of policies which are enforced by execution monitoring mechanisms with an extra structure that is an extension of Schneider's enforcement mechanism. This paper is a starting point for continuing in this area. We use an emulator as the extra structure, which emulates the behavior of a system by running a subsequence from an interleaved state sequence of processes, in order to detect several covert channels at run time. We then define a security automaton for this extended mechanism and show a class of properties which is enforced by the security automaton. Further, our mechanism can enforce information flow policies, which are specified by system developers, under an information flow property to be defined for the aim of this study. We show that the information flow property include O'Halloran's noninference. In the last of this paper, we give a simple example for the policy and an outline of our mechanism.

Home

Search

Support

About T2R2

Related Links

Publication Information